Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lMUnuejq1eJopMPwLp0lgbgCbnQ.roa
File: lMUnuejq1eJopMPwLp0lgbgCbnQ.roa (raw, json)
Hash identifier: SccgIcFn6peA/R2+tbdH0W23qoHBBbpIKTy3JNJ4whY=
Subject key identifier: 94:C5:27:B9:E8:EA:D5:E2:68:A4:C3:F0:2E:9D:25:81:B8:02:6E:74
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A7A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lMUnuejq1eJopMPwLp0lgbgCbnQ.roa
Signing time: Sun 07 Feb 2021 11:36:22 +0000
ROA not before: Sun 07 Feb 2021 11:36:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 202.132.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2682 (0xa7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=94C527B9E8EAD5E268A4C3F02E9D2581B8026E74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4b:60:b9:ef:f5:70:49:64:78:d3:fd:4c:69:
58:28:4e:2b:0a:61:06:a1:ac:53:5e:10:69:40:43:
76:d1:1e:79:e1:ea:17:06:8d:bc:db:e8:6a:b9:15:
6e:e8:2e:c9:dd:b1:01:77:67:17:0d:77:6c:75:aa:
c1:b8:98:9c:2b:b5:3e:eb:02:68:47:17:d0:81:4e:
7c:9c:98:51:be:0b:8d:34:b7:91:7c:99:eb:a2:80:
b9:3a:c8:b1:49:a1:8c:b5:e1:a5:72:34:6f:de:5e:
e1:68:57:00:e2:de:6c:b1:04:bd:d4:2e:e6:6f:78:
25:eb:2f:f8:d9:ea:46:73:9c:c6:88:8e:bd:15:95:
cc:c2:77:20:44:5e:54:a4:04:d5:a6:cf:dd:aa:dd:
b2:57:15:5b:0c:35:c1:2b:d1:02:9b:6d:15:21:97:
5a:93:6d:4f:ec:ee:06:d7:83:dd:6c:3e:60:1d:2e:
d2:59:7d:3a:8e:07:ad:b0:7e:b4:b5:1a:37:ad:00:
a8:d6:c9:d7:d6:9c:95:dd:90:95:e7:31:05:35:ea:
70:95:7e:48:c0:bb:8b:5b:7a:c0:d4:06:88:32:d2:
b1:72:1a:82:7c:3e:6e:c9:9e:74:8f:8f:47:6f:bb:
e5:30:61:25:6f:73:ca:d1:80:ca:6f:ac:2c:a6:78:
01:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C5:27:B9:E8:EA:D5:E2:68:A4:C3:F0:2E:9D:25:81:B8:02:6E:74
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lMUnuejq1eJopMPwLp0lgbgCbnQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.132.0.0/16
Signature Algorithm: sha256WithRSAEncryption
85:40:d8:d4:aa:f1:82:24:89:bf:ee:13:64:24:e7:5f:80:f5:
fd:bc:a1:2d:a0:57:0f:4e:fa:09:94:9b:2f:31:5e:49:b3:1f:
77:79:07:ec:f9:60:09:57:35:a5:f4:ed:fe:16:23:1d:b8:a2:
29:3c:5d:4b:4d:12:78:cb:48:56:81:ea:e2:55:54:b2:25:7e:
82:95:2c:da:6b:29:86:3f:92:40:41:16:07:5d:3d:d1:04:79:
44:58:87:de:10:ce:b4:dd:cb:9c:d2:8e:00:08:77:0d:01:81:
e2:ad:26:43:49:77:d4:5d:3e:81:4b:d2:52:5f:58:f8:43:00:
c3:ba:fc:5f:6b:3e:f3:8b:21:55:5f:98:20:dd:79:c6:68:a3:
aa:a0:aa:be:bb:c3:0d:93:0c:32:1c:b9:53:fe:24:88:3e:57:
a2:45:3e:57:db:20:a1:7c:10:92:4b:d3:24:ba:8d:e3:1f:45:
e1:a0:e2:f2:f5:8e:67:24:e7:17:12:4b:81:75:8b:22:ce:8d:
cf:48:fd:73:23:9f:a8:e6:cf:46:45:e1:53:78:c5:02:2a:14:
a1:66:f9:be:70:16:6f:ee:4e:6d:5e:4a:16:e0:8d:0e:40:0e:
0e:3f:c7:b8:9e:d9:9a:e2:aa:6e:78:84:a9:ae:f6:b7:bf:b1:
32:4c:4b:de
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICCnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTM2MjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk0QzUyN0I5RThFQUQ1
RTI2OEE0QzNGMDJFOUQyNTgxQjgwMjZFNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdS2C57/VwSWR40/1MaVgoTisKYQahrFNeEGlAQ3bRHnnh6hcG
jbzb6Gq5FW7oLsndsQF3ZxcNd2x1qsG4mJwrtT7rAmhHF9CBTnycmFG+C400t5F8
meuigLk6yLFJoYy14aVyNG/eXuFoVwDi3myxBL3ULuZveCXrL/jZ6kZznMaIjr0V
lczCdyBEXlSkBNWmz92q3bJXFVsMNcEr0QKbbRUhl1qTbU/s7gbXg91sPmAdLtJZ
fTqOB62wfrS1GjetAKjWydfWnJXdkJXnMQU16nCVfkjAu4tbesDUBogy0rFyGoJ8
Pm7JnnSPj0dvu+UwYSVvc8rRgMpvrCymeAEVAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUlMUnuejq1eJopMPwLp0lgbgCbnQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbE1VbnVlanExZUpvcE1Q
d0xwMGxnYmdDYm5RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
AMqEMA0GCSqGSIb3DQEBCwUAA4IBAQCFQNjUqvGCJIm/7hNkJOdfgPX9vKEtoFcP
TvoJlJsvMV5Jsx93eQfs+WAJVzWl9O3+FiMduKIpPF1LTRJ4y0hWgeriVVSyJX6C
lSzaaymGP5JAQRYHXT3RBHlEWIfeEM603cuc0o4ACHcNAYHirSZDSXfUXT6BS9JS
X1j4QwDDuvxfaz7ziyFVX5gg3XnGaKOqoKq+u8MNkwwyHLlT/iSIPleiRT5X2yCh
fBCSS9Mkuo3jH0XhoOLy9Y5nJOcXEkuBdYsizo3PSP1zI5+o5s9GReFTeMUCKhSh
Zvm+cBZv7k5tXkoW4I0OQA4OP8e4ntma4qpueISprva3v7EyTEve
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:31 2025 by rpki-client